Fake screenshots, fake locations, fake fans frequently watch out for online gray and black software fraud

　　Fake screenshots, fake locations, fake fans frequently watch out for online gray and black software fraud

　　Industry Watch

　　Wang Yang Hu Lin Guo Sang Tong

　　Recently, Shandong Weishang Jin reported that a woman in Yancheng, Jiangsu Province, Han had purchased cosmetics 14 times in her store, and every time she paid for it, she showed a screenshot of the payment. By chance, Jin discovered that the account amount was wrong, and after a careful investigation, he found that he had not actually received the payment from Han, which amounted to more than 20,000 yuan.

　　Jin's experience is not a case. Recently, cases of fraudulent shops using fake WeChat transfers have occurred in Guangxi, Chongqing and other places. The reporter's investigation found that at present, some gray and black software on the Internet that wandered the edge of the law can generate fake screenshots, fake locations, fake fans, and breed fraud.

　　Payment screenshots, locations, fans, etc. can be faked

　　The reporter's investigation found that behind the fake screenshots, there are a large number of gray and black software with "payment interface generators" in various application markets.

　　The reporter downloaded and used a variety of software such as "Universal WeChat Screenshot King" and found that using these software, WeChat conversations, WeChat payment screenshots, Alipay transaction screenshots, Taobao order screenshots, etc. can be faked. Some software developers charge users a "membership fee" to make fake screenshots an unlimited number of times. These membership fees range from tens of yuan to two to three hundred yuan.

　　Some software can modify the real position. The police in Zhejiang, Hainan, Hubei and other places jointly cracked a fraud case. The criminal group used software to modify the WeChat location, falsely claiming that it could provide door-to-door services, and tricking others into prepayment and deception.

　　According to experts, at present, some gray and black software has developed the "Global Virtual Positioning to add nearby people" function based on the WeChat platform, which can locate the mobile phone to any place, automatically grab the ID information of surrounding users, and automatically send friend application instructions .

　　The reporter also found on Xianyu, Taobao and other websites that some businesses sell a variety of panic buying assistant software, claiming that it can effectively increase the chance of users buying panic when shopping. In these software interfaces, you can set the rush time, the number of retries, the retry frequency, and the attributes of rush-buying commodities.

　　Some companies that do online shopping live broadcasts said that the live broadcast studios often use barrage to give profits to consumers. Some consumers use panic buying assistant software to fake the number of fans, increase the winning rate, and reduce the chances of other consumers winning. "This is very unfair, and we are also very headache." An anchor said.

　　The technical content is high or low, and an underground industrial chain has been formed

　　The reporter's investigation found that at present, this kind of software is active in social software, mobile payment software, short video software and live broadcast platforms with more users and larger traffic, and has formed an Internet gray and black industry chain.

　　In May of this year, Tencent sued a Shenzhen-based company that operates nine apps including the "WeChat Dialogue Generator" and "WeChat Screenshots" and other apps. The court held that the defendant provided a tool for counterfeiting and cheating, the website and application software involved in the case had high downloads, the scope of infringement was large, copyright was infringed, and the Anti-Unfair Competition Law was violated.

　　Zhu Yixiang, the chief researcher of the Shanghai Fifth Space Information Technology Research Institute, said that the developers of this "parasitic" gray-black software mainly design plug-in software and write code by analyzing the operating principles, mechanisms, and methods of a target software.

　　An engineer from Qi’anxin Group told reporters that screenshot software has a low technical content and only requires 10 lines of core code to generate it. It can be produced even with the most basic drawing software, while it’s a snap-up software for expensive products such as mobile phones and alcohol. , You need to write more complex background programs.

　　According to the person in charge of Tencent’s Anti-Fraud Lab, after years of development, the gray and black industries implicated by related malware have become large-scale and ecological, forming a relatively complete industrial chain. Upstream supplies of "attack materials", including identity information, IP, account numbers, etc. Network resources, downstream gangs use channel resources to assist in monetization and money laundering.

　　At the end of last year, the Guangzhou police successfully cracked a case involving the production and sale of WeChat plug-in software, and seized approximately 650,000 WeChat accounts. The police found that the gang's software producer was mainly responsible for the development of WeChat plug-in software, and illegally profited by selling authorization codes and collecting software agency fees; software agents purchased the authorization codes and resold them to WeChat merchants; WeChat merchants used the plug-in software to register WeChat in batches Account to maintain and sell accounts. Finally, the WeChat account registered through the plug-in software can add friends in batches for illegal and criminal activities such as dating fraud.

　　Clarify legal boundaries, and operators take the initiative to safeguard rights

　　Wu Danjun, a lawyer at Beijing Guantao Zhongmao (Shanghai) Law Firm, believes that this kind of "parasitic" gray and black software harms users' right to know and privacy, disrupts the normal operating order of network operators, breeds fraud and fraud, and needs to cause High vigilance and strict governance.

　　Meng Bo, a lawyer at Beijing Jingshi Law Firm, believes that regulatory authorities should strengthen management and crackdown on "parasitic" gray-black software in accordance with the Cyber ​​Security Law, Internet Information Service Management Measures, and the Regulations on Ecological Governance of Online Information Content.

　　It is worth noting that there are still gaps in the legal supervision of related software. For example, the current law does not explicitly prohibit the use of "assistant" software. According to a well-known live broadcast software company in Guangzhou, from the perspective of platform governance, platform rules can be used to restrict user accounts, but they cannot completely prevent the use of such software on other platforms.

　　Experts such as Zhu Yixiang said that on the one hand, the legal boundaries and illegal determination rules of such software should be clarified as soon as possible from the legislation; on the other hand, network operators should take the initiative to manage and legally protect their rights.